Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OJn-a2Ryp0qkIBn9FHMUb1W5mww.roa
File: OJn-a2Ryp0qkIBn9FHMUb1W5mww.roa (raw, json)
Hash identifier: drghP9rmHZEHRc1MaDCjwDElW7SovPHj/i+XZkXkbh0=
Subject key identifier: 38:99:FE:6B:64:72:A7:4A:A4:20:19:FD:14:73:14:6F:55:B9:9B:0C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 203A
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OJn-a2Ryp0qkIBn9FHMUb1W5mww.roa
Signing time: Fri 25 Nov 2022 04:38:28 +0000
ROA not before: Fri 25 Nov 2022 04:38:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8250 (0x203a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3899FE6B6472A74AA42019FD1473146F55B99B0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a0:1c:31:5c:d6:99:3e:0e:52:51:2e:28:f2:
1b:0e:b6:c3:9b:dc:90:ef:ab:0a:9a:b2:69:9b:41:
b8:e3:64:a6:43:f0:b7:c3:1e:54:6f:00:9f:02:31:
42:07:b2:e0:a5:d4:82:56:f1:2c:fb:37:11:80:3b:
54:fd:dd:56:d4:98:2e:3b:91:d5:70:79:f5:a5:da:
4e:cd:4d:be:98:a3:91:b6:81:59:0b:5f:9f:02:2a:
36:5e:40:aa:c6:bc:65:25:a1:0a:c4:73:ce:03:fa:
c6:18:5f:a7:93:f8:a3:89:e7:7f:18:e0:a6:43:01:
04:8a:ab:fb:43:5f:98:db:97:8f:e2:85:cd:09:33:
a0:dc:55:f3:58:f4:81:c5:ea:54:29:99:58:77:02:
04:64:73:ef:ae:90:90:82:83:5f:87:43:0e:29:2d:
f6:c6:0e:02:8f:eb:c6:2f:e6:c8:0b:82:9c:0f:d0:
b5:53:b4:1e:0e:1b:99:38:09:6f:5e:c8:fd:a9:d1:
eb:34:2b:79:0d:09:86:87:77:eb:6b:52:5b:41:75:
0b:be:81:f3:fe:e4:a2:d7:b9:b3:52:65:16:77:bf:
66:b6:d9:9c:8b:05:46:25:41:1e:3a:d5:d8:82:bc:
cc:b8:2e:12:31:32:b5:9e:59:35:ad:9e:68:f5:42:
b9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:99:FE:6B:64:72:A7:4A:A4:20:19:FD:14:73:14:6F:55:B9:9B:0C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OJn-a2Ryp0qkIBn9FHMUb1W5mww.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.84.0/22
Signature Algorithm: sha256WithRSAEncryption
39:60:44:70:c2:fb:86:91:10:4f:73:08:e9:86:29:d2:b5:b7:
59:75:fb:32:ed:77:46:ee:4d:2b:ac:39:d9:bc:28:6a:cd:0e:
58:f2:45:15:06:ed:c1:4b:64:54:4c:c4:33:c9:84:b8:fb:1d:
06:ec:09:36:36:34:34:a8:ae:ef:3a:26:09:be:26:f9:fe:1b:
1b:fe:f4:2c:62:cd:8d:23:ea:ff:90:bf:7d:94:6d:64:a9:20:
a0:dc:51:a1:51:b0:f9:de:62:7c:8a:1a:89:c2:4c:fe:c1:8f:
88:a2:08:e5:ab:ea:13:e4:3c:08:25:58:dd:b9:0d:fb:44:9e:
24:dd:c5:be:f7:e1:19:71:9c:ef:27:2f:d0:2e:7e:39:44:bc:
d8:74:2c:65:2e:30:75:ef:04:0d:10:55:df:6f:b1:8b:34:95:
0c:93:a7:62:35:85:63:eb:72:2b:1a:cc:10:ae:0b:5b:22:bf:
1e:cc:fc:b2:d9:d8:14:69:fc:f0:dd:52:7b:31:02:8a:b7:9e:
02:36:5f:f4:4a:2d:c7:1c:92:04:0f:fc:8e:ab:9f:4b:f6:f4:
0e:ad:c5:4d:85:0c:94:ba:f5:7a:d0:cd:2c:8e:db:ad:d1:d9:
02:4d:ff:bd:68:82:75:2a:5c:6b:8a:78:d9:3c:c1:36:31:c0:
f0:8b:89:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org